SQL Injection Vulnerability in Techno Dreams Mailing List Script Allows Remote Code Execution and Authentication Bypass

SQL Injection Vulnerability in Techno Dreams Mailing List Script Allows Remote Code Execution and Authentication Bypass

CVE-2005-3385 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in Techno Dreams Mailing List script allows remote attackers to execute arbitrary SQL commands and bypass authentication via the userid parameter in admin/login.asp.

Learn more about our User Device Pen Test.